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ABSTRACT 

Interconnected  heterogeneous  networks  with  diverse  ownership/  carrying  a  wide  range  of 
multimedia  traffic  with  extreme  variations  in  load  will  characterise  military  networks  of 
the  future.  Consequently,  the  design  of  a  management  and  control  architecture,  which 
fosters  efficient  and  military-tailored  resource  sharing,  is  a  challenging  multifaceted 
problem.  A  key  feature  of  such  an  architecture  is  to  give  the  network  the  ability  to  deliver 
meaningful  signals  to  users  in  order  for  them  to  modify  their  behaviour  in  a  way  that  is 
beneficial  to  the  network  as  a  whole.  For  example,  during  times  of  network  stress,  users 
should  be  discouraged  from  excessive  network  usage.  Demand  moderation  is  the  term 
used  to  encompass  the  array  of  mechanisms  aimed  at  achieving  this  end.  Integrated 
Defence  networks  of  the  future  should  benefit  enormously  from  demand  moderation 
mechanisms. 
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Demand  Moderation  in  Military 
Communication  Networks 


Executive  Summary 

In  the  next  few  years,  one  can  envisage  a  highly  connected  and  integrated  Defence 
communications  network  comprising  high  speed  land  lines,  satellite  links,  HF  links,  and  a 
variety  of  other  RF  links.  With  this  increased  connectivity,  there  comes  a  wide  array  of 
obvious  benefits.  However,  a  potentially  serious  problem  will  be  introduced,  which  must 
be  addressed.  Users  who  reside  on  high  capacity  networks  can  inadvertently  overload  low 
capacity  or  impoverished  networks  through  inappropriate  usage.  There  have  been  already 
been  examples  of  this  in  recent  times  including  the  recent  Interfet  operations. 

This  report  provides  an  introduction  to  demand  moderation  concepts  that  concern 
mechanisms  aimed  at  controlling  user  behaviour  on  communications  networks.  The  key 
idea  is  to  provide  feedback  signals  to  users  in  order  to  modify  behaviour.  These  signals 
can  have  the  effect  of  encouraging  user  activity  during  times  of  low  network  load,  and 
deterring  it  during  overload.  Intelligent  modules  placed  in  the  communications  networks 
are  the  means  by  which  these  signals  are  generated.  These  modules  would  be  aware  of 
traffic  flows,  local  link  conditions,  and  user  demand.  Advanced  network  modules  could 
perform  distributed  scheduling  in  order  to  further  co-ordinate  network  usage.  Signals 
processed  by  user  modules  could  provide  users  with  concise  state  information  via  a 
graphical  interface  -  hopefully  moderating  behaviour  to  benefit  the  enterprise. 

This  report  describes  the  key  elements  of  a  demand  moderation  architecture.  An  example 
architecture  is  presented  for  the  protection  of  a  single  impoverished  link,  which  is  a 
common  scenario  in  Defence  networks.  An  auction  based  token  bucket  algorithm  is 
developed  which  is  used  to  realise  this  architecture.  This  algorithm  increases  the  cost  of 
network  usage  according  to  the  user  demand  and  network  load.  It  is  has  been 
implemented  in  a  demonstrator  at  DSTO  Fernhill  and  is  readily  realisable  in  real-time. 

The  demand  moderation  concepts  presented  in  this  report,  augment  the  early  work  done 
by  Communications  Division  in  the  area  of  Military  QoS  (MQoS)  within  Defence 
networks.  Additional  mechanisms  are  described  that  enable  the  moderation  of  flows 
within  a  traffic  class.  These  classes,  described  in  the  original  framework,  could  possibly  be 
vulnerable  to  inappropriate  user  access  without  moderation  mechanisms. 
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1.  Introduction 


In  the  last  five  years  the  number  of  Internet  hosts  has  increased  from  approximately 
5  million  to  93  million,  and  the  number  of  web  sites  from  20000  to  20  million  [ZAKO00]. 
User  expectations  of  the  new  technology  have  inflated  with  this  explosive  growth  of 
information  availability.  Additionally,  the  furious  development  of  new 
multimedia/multiparty  services  has  further  fuelled  users'  technological  hunger. 

The  provisioning  of  a  wide  variety  of  services  has  revealed  the  inadequacies  of  the 
currently  used  Internet  network  protocol,  IP  Version  4,  which  only  offers  a  best  effort 
service  class.  Anyone  who  has  attempted  to  operate  a  streamed  audio  application  across 
the  Internet  will  affirm  this.  Additionally,  the  best  effort  service  offered  by  the  current 
Internet  does  not  encourage  or  enable  sensible  resource  sharing.  This  has  a  parallel  in 
history.  For  hundreds  of  years,  herders  grazed  their  cattle  and  sheep  on  common  land.  As 
long  as  no  individual  tried  to  graze  too  many  cattle,  everybody  benefited  from  the 
common  resource.  The  problem  is  that  the  benefit  for  taking  more  than  their  share  went  to 
the  freeloading  herder  while  the  cost  was  paid  by  everyone.  When  too  many  people 
asserted  their  self-interest  above  the  interest  of  the  commons,  overgrazing  destroyed  the 
value  of  the  common  land.  Biologist  Garrett  Hardin  described  this  catastrophe  as  "the 
tragedy  of  the  commons.” 

The  urgent  need  to  support  Quality  of  Service  (QoS)  has  generated  a  great  deal  of  effort 
from  the  Internet  Engineering  Task  Force  (IETF)  who  have  proposed  candidate  QoS 
models  such  as  the  Integrated  Services  architecture  [NWG94],  and  the  Differentiated 
Services  architecture  [NWG98].  A  well  designed  management  and  control  architecture  for 
integrated  communications  networks  is  paramount. 

Paralleling  the  commercial  situation,  there  is  a  growing  demand  amongst  Defence  users 
for  multimedia /multiparty  services  on  Defence  networks.  To  meet  this  need,  the 
Australian  Defence  Force  (ADF)  is  assembling  a  fixed  high  bandwidth  core  network. 
Additionally,  there  will  be  improvements  to  the  currently  impoverished  tactical 
communications  infrastructure  and  its  interconnections  with  the  strategic  domain.  The 
creation  of  a  highly  connected  homogeneous  network  infrastructure  will  result. 

As  argued  in  [KWLA99a,  KWIA99b,  BLAC00]  there  will  be  a  strong  need  to  have 
mechanisms  in  place  to  support  Military  Quality  of  Service  (MQoS)  on  this  infrastructure. 
MQoS  extends  QoS  concepts  by  introducing  the  notion  of  military  value  of  information.  As 
argued  in  [KOWA96a,  KOWA96b,  KWIA99a,  KWIA99b],  network  traffic  should  be 
managed  as  a  function  of  its  military  value.  In  overloaded  military  networks  when  not 
enough  resources  are  available  to  send  all  information  at  a  desired  QoS,  flow  prioritisation 
and  graceful  degradation  should  be  based  on  the  military  value  of  the  flow. 

In  [KWIA99b]  a  set  of  mechanisms  are  presented  for  achieving  end-to-end  MQoS.  These 
are  provision  (flow  establishment),  control  (real-time  scale  flow  maintenance),  and 
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management  (slow  time  scale  flow  maintenance).  The  implementation  of  these  will  go  a 
long  way  towards  achieving  the  objective  of  realising  interconnected  networks  which 
support  a  variety  of  services,  and  assure  that  the  most  important  information  based  on 
military  value  is  given  preferential  treatment. 

Recent  operational  experiences  have  revealed  shortcomings  in  our  current  networks  that 
may  not  be  completely  resolved  with  MQoS  mechanisms  of  priority  and  pre-emption.  The 
following  examples  provide  motivation. 

□  During  the  1991  Gulf  Crisis,  military  messages  experienced  enormous  delays.  In 
particular,  FLASH  messages  were  delivered  well  past  their  time  of  utility.  Data 
gathered  many  years  ago  in  [FELD79]  indicate  that  under  crisis  conditions,  as  much  as 
60  percent  of  the  traffic  in  certain  military  systems  may  be  of  precedence  IMMEDIATE 
or  higher.  When  such  a  high  percentage  of  the  traffic  is  urgent,  priority  queuing  is  not 
be  itself  adequate  as  a  mechanism  for  managing  congestion. 

□  During  the  Interfet  operations  in  East  Timor,  a  tactical  extension  to  the  SECBRS  (Secret 
Backbone  Router  Service  -  secret  strategic  Defence  network  spread  across  Australia) 
was  established  between  Australia  and  East  Timor.  The  link  provided  a  data  channel  at 
256kbps.  This  link  was  quickly  saturated  by  users  accustomed  to  sending  large  email 
attachments  across  strategic  networks.  An  interim  procedure  was  eventually 
established  which  limited  the  size  of  items  that  could  be  transferred  across  the 
boundary. 

□  Again,  during  the  Interfet  operations,  an  experimental  Theatre  Broadcast  System  (TBS) 
was  deployed.  The  system  gave  users  the  ability  to  request  items  to  be  included  on  the 
broadcast  via  a  common  interface.  The  interface  enabled  users  to  specify  a  number  of 
delivery  priority  options.  It  was  found  that  users  who  were  dissatisfied  with  delivery 
times  inflated  their  precedence  and  deflated  their  required  delivery  times.  This 
behaviour  was  even  seen  by  the  system  designers  who  should  have  known  better! 

Two  major  lessons  can  be  drawn  from  the  preceding  examples.  Firstly,  during  times  of 
conflict,  users  have  an  increased  belief  in  the  importance  of  their  information  and  justify 
their  network  usage  accordingly.  Secondly,  with  the  expected  increase  in  strategic  network 
extensions  to  the  tactical  domain,  users  can,  from  the  comfort  of  their  office,  access 
relatively  impoverished  communications  links  without  necessarily  appreciating  the 
ramifications  of  their  actions. 

Clearly,  mechanisms  need  to  be  in  place  in  military  networks  to  control  user  behaviour. 
These  mechanisms  should  not  only  discourage  or  inhibit  network  usage  in  times  of  high 
load,  but  also  encourage  or  facilitate  network  usage  in  times  of  low  load.  Further,  we 
argue  that  intelligent  network  mechanisms  can  be  used  to  modify  user  behaviour  on 
military  networks  in  a  manner  that  results  in  a  greater  enterprise  network  utility.  This 
approach  shall  be  termed  Demand  Moderation. 

At  the  outset,  we  deflect  three  arguments  than  can  be  raised  against  demand  moderation 
concepts.  The  first  is  that  increasing  bandwidth  will  alleviate  the  problems  identified.  This 
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hardly  deserves  a  response  other  than  a  reminder  of  economics,  physics  (Shannon's  Law), 
and  the  Internet  experience  (bandwidth  demand  outpaces  bandwidth  supply  -  three  years 
ago  bandwidth  demand  doubled  every  year,  now  it  doubles  every  2-3  months). 

A  second  argument  is  that  an  MQoS  framework,  such  as  the  one  advocated  in  [KWIA99a, 
BLACOO],  is  sufficient  to  deal  with  the  identified  issues.  The  MQoS  framework  suggests 
that  the  priority  of  an  information  flow  in  military  communications  networks  should  be 
managed  as  a  function  of  its  military  value.  This  is  based  on:  the  Mission  Priority  value, 
which  represents  an  enterprise  value  relative  to  other  missions;  the  Precedence  which  is 
used  to  request  from  the  network  preference  to  transfer  important  information  over  a 
limited  period  of  time;  and  the  User  perceived  priority  which  allows  the  user  to  make  a 
subjective  differentiation  between  his/her  applications  and/or  flows  when  all  other 
parameters  are  equal.  Such  an  architecture  will  indeed  alleviate  many  of  the  problems 
identified  by  the  examples  above.  However,  in  order  to  deal  with  the  full  array  of 
problems,  we  argue  that  demand  moderation  should  form  a  key  component  of  this 
architecture.  The  Gulf  Crisis  and  the  TBS  experience  show  that  priority  systems  are  open 
to  user  abuse.  Users  with  high  privilege  can  unknowingly  cripple  networks  with 
inappropriate  usage.  Even  inappropriate  submissions  of  low  priori ty/precedence  traffic 
on  networks  can  adversely  affect  low  privilege  users  in  an  undesirable  way.  Further, 
groups  of  users  limited  to  particular  priority  levels  need  to  be  moderated  against  one 
another. 

Thirdly,  the  use  of  military  procedures,  policies  and  guidelines  can  enforce  appropriate 
network  behaviour.  This  in  and  of  itself  is  a  form  of  demand  moderation.  However,  as 
traditionally  enforced,  such  an  approach  is  somewhat  archaic  on  modem  networks. 
Inefficiencies  are  created  when  simple  policies  (e.g.,  no  more  than  10  flash  messages  per 
day,  or  max  length  of  a  message  is  60  characters)  are  enforced  on  human  users.  Rather, 
modern  networks  can  have  intelligence  embedded  in  them  with  state  information 
availability,  which  can  trigger  sophisticated  algorithms  that  can  deal  with  user  requests  in 
an  automatic  fashion.  Consequently,  a  more  efficient  utilisation  of  the  network  by  the 
enterprise  may  be  achieved  as  opposed  to  a  set  of  static  policies. 

The  remainder  of  this  paper  is  organised  as  follows.  Section  2  will  provide  a  survey  of  the 
requirements  for  a  demand  moderation  architecture.  An  example  architecture  is  presented 
in  Section  3.  A  demand  moderation  demonstrator  is  described  in  Section  4.  Finally,  in 
Section  5,  conclusions,  remaining  issues,  and  further  work  are  given. 

2.  User  Influence  and  Architecture  Requirements 

Demand  moderation  mechanisms  attempt  to  exert  a  control  upon  and  modify  user 
network  behaviour.  This  is  to  be  distinguished  from  congestion  and  control  mechanisms 
that  directly  shape  network  traffic.  However,  the  latter  mechanisms  may  form  part  of  a 
demand  moderation  architecture.  Network  bandwidth,  a  scarce  resource  on  many  military 
communications  networks  is  to  be  used  wisely  by  the  enterprise  as  a  whole.  "Rogue"  users 
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are  to  be  discouraged  and  network  usage  aligned  with  enterprise  objectives  should  be 
encouraged. 

The  question  of  allocating  and  controlling  a  scarce  resource  is  of  course  a  fundamental 
economics  problem  for  which  a  wide  range  of  economic  systems  have  been  devised. 
Whatever  the  economic  system,  four  means  have  been  identified  by  which  decision¬ 
makers  can  motivate  others  to  follow  their  pronouncements: 

1.  appeal  to  egocentrism  through  accumulation  of  wealth  or  respect  of  peers  ("The  user 
who  can  perform  their  required  work  while  generated  the  least  network  traffic  will  be 
awarded  the  divisional  prize!"), 

2.  reliance  on  tradition  or  customary  obligation,  ("In  this  organisation,  we  pride  ourselves 
on  generating  low  levels  of  network  traffic!") 

3.  appeal  to  solidarity  or  the  willing  subordination  of  the  individual's  personal  objectives 
to  those  shared  by  the  group  ("Think  of  your  colleagues  before  you  begin  that 
download!"),  and 

4.  coercion  ("Anyone  found  generating  high  levels  of  network  traffic  will  have  the  access 
removed!"). 

There  is  a  range  of  ways  to  perform  economic  system  taxonomies  but  arguably  the  most 
important  is  the  level  of  centralisation.  Centralisation  refers  to  the  extent  allocation 
decisions  are  administered  by  central  authorities  or  are  taken  by  the  micro-units 
independently  of  central  authorities  through  a  system  of  markets.  Pure  socialism  and  pure 
capitalism  fall  at  the  extremes  of  the  centralisation  spectrum. 

In  order  for  a  centralised  economy  to  be  effective,  the  central  decision  making  authority 
requires  detailed  and  accurate  state  information.  In  [SEMR99a],  where  the  focus  is  on 
pricing  mechanisms  in  commercial  networks  to  promote  appropriate  network  sharing,  the 
observation  is  made  that  centralised  network  control  is  not  possible.  This  pronouncement 
is  made  on  the  basis  of  two  observations.  Firstly,  because  of  the  diverse  ownership  of 
network  resources.  Secondly,  and  more  fundamentally,  a  large  multimedia  network  with 
QoS  would  be  too  complex  and  decentralised  to  be  under  a  single  authority.  Even 
centralised  control  objectives  would  be  impossible  to  define.  It  is  well  accepted  that 
network-wide  optimisation  is  an  impractical  paradigm  for  the  control  of  modem  networks 
[ZHAN92,  ALTM94,  ORDA93,  KORI95a,  KORI95b].  Indeed,  control  decisions  in  large- 
scale  networks  are  often  made  by  each  user  independently,  according  to  his  own 
individual  objectives.  Such  networks  are  defined  as  non-cooperative,  and  game  theory  is 
the  appropriate  framework  to  study  their  behaviour.  Under  the  non-cooperative 
paradigm,  the  network  is  considered  as  a  site  of  competition  for  the  network  resources 
among  selfish  users.  The  problem  of  selfish  users  on  a  network  is  not  necessarily  due  to  a 
pessimistic  view,  but  rather  recognising  that  technology  and  nature  make  it  impossible  to 
be  unselfish,  or  even  know  what  it  is  to  be  unselfish. 

It  is  likely  that  decentralised  or  distributed  market  mechanisms  are  going  to  be  more 
effective  in  controlling  user  behaviour,  given  the  nature  resource  sharing  in  multimedia 
networks.  Adam  Smith's  analysis  of  markets  in  the  late  18th  century  showed  that  the 
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"invisible  hand"  effect  of  "selfish"  distributed  self-optimising  agents  often  perform 
resource  allocation  more  efficiently  than  centralised  systems.  Again  in  [SEMR99a]  it  is 
shown  that  by  placing  "rules"  of  interaction  in  the  way  the  network  is  utilised,  network 
wide  optimisation  can  be  performed.  By  taking  a  game  theoretic  approach  in  the 
engineering  of  the  network,  one  can  design  mechanisms  where  the  intelligent  decision¬ 
making  is  distributed  and  the  objective  of  a  more  efficient  and  fair  utilisation  of  shared 
resources  results  from  the  induced  dynamics.  Using  this  approach,  prices  play  a 
fundamental  role  as  resource  allocation  signals. 

From  this,  one  can  identify  a  number  of  key  elements  that  must  be  present  in  a  network  in 
order  for  distributed  market  mechanisms  to  be  effective  in  user  control. 

Users:  The  objective  of  demand  moderation  mechanisms  is  to  exert  a  controlling  influence 
on  the  individual  network  users. 

Units:  These  are  groups  of  one  or  more  users  who  share  common  resources.  The  demand 
moderating  mechanisms  in  the  network  treat  units  as  atomic  entities.  Individual  users 
within  a  group  would  be  expected  to  be  collocated  and  be  able  to  negotiate  unit 
resources. 

Unit  Funds:  Each  unit  maintains  a  medium  of  exchange  that  can  be  traded  for  network 
usage. 

Unit  Income:  There  must  be  a  means  by  which  unit  funds  are  generated. 

Unit  Agent:  Each  unit  must  have  a  representative  that  is  responsible  for  interfacing  with 
the  network  to  trade  unit  funds  for  actual  network  resource.  There  must  be  a  means  by 
which  units  can  instruct  their  agents  to  act  according  to  their  wishes.  Once  these 
instructions  are  issued,  the  agent,  as  far  as  possible,  should  act  independently  from  the 
units. 

Market:  Competing  unit  agents  require  a  forum  for  trading.  The  market  is  a  virtual  entity 
that  brings  unit  agents  together  to  negotiate  for  network  resources. 

Pricing:  Prices  are  the  terms  of  trade  for  exchanging  unit  funds  for  network  resources  in 
markets.  Depending  upon  the  exact  demand  moderation  architecture,  prices  could 
relate  to  generic  network  usage,  link-by-link  usage,  or  bottleneck  usage  only. 

Price  Dynamics:  In  order  to  achieve  the  objectives  of  demand  moderation  under  the 
economic  model  proposed,  it  is  important  that  prices  are  driven  by:  unit  demand  for 
network  resources;  and  network  load. 

Price  Regulation:  Prices  are  driven  entirely  by  market  forces  in  an  idealistic  market 
economy.  In  practical  settings,  there  are  other  price  regulating  entities  (e.g. 
government  imposed  price  ceilings).  In  order  to  drive  network  dynamics  to  desirable 
states,  mechanisms  are  required  to  monitor  and  regulate  prices. 

Network  Monitoring:  At  key  points  in  the  network,  especially  at  bottlenecks,  state  should 
be  measured  and  be  signalled  via  the  price  regulator  to  the  units. 

Signalling:  There  must  be  a  means  to  signal  prices  to  the  various  entities  and  players  in 
the  network. 

Unit  Interface:  Users  must  be  aware  of  the  network  dynamics,  prices,  and  their  own 
resources.  The  interface  should  be  simple  but  effective  in  achieving  this  end. 
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Policing:  Ultimately,  there  must  be  mechanisms  to  enforce  behaviour  and  strong  feedback 
to  non-compliant  units. 

In  the  military  context,  demand  moderation  is  crucial  to  cope  with  bottlenecks  in 
impoverished  links  or  overloaded  networks.  Demand  moderation  architectures  designed 
to  diminish  bottlenecks  would  impose  a  high  price  for  bottleneck  traffic  during  times  of 
stress.  The  price  may  be  expected  to  rise  purely  through  market  forces,  but  also  price¬ 
regulating  mechanisms  could  enforce  this  as  mentioned  above.  The  fundamental 
philosophy  of  demand  moderation  is  that  these  prices  must  be  available  to  individual 
units  in  order  to  modify  their  network  usage  accordingly.  Network  usage  during  high 
price  periods  would  result  in  rapid  loss  of  funds  and  finally  may  result  in  access  denial 
through  either  an  administrative  process,  or  an  automated  regime.  Conversely,  during 
times  of  lower  prices,  users  may  be  encouraged  to  use  the  network. 

Any  demand  moderation  architecture  requires  some  careful  decisions  in  relation  to 
scalability,  particularly  when  it  is  network-wide.  The  signalling  overhead  must  be 
minimized  by  keeping  message  sizes  small  and  by  minimizing  inter-network 
communications,  particularly  those  over  bottlenecks  that  are  trying  to  be  protected. 
Trading  off  against  this,  computational  efforts  should  be  distributed  where  possible. 

A  further  dimension  that  could  be  added  to  a  demand  moderation  architecture  is  that  of 
unit  scheduling.  In  order  to  encourage  considered  network  usage,  it  may  be  possible  to 
announce  ahead  of  time  particular  periods  of  economical  network  usage.  This  could  take 
the  form  of  price  reductions  over  a  period  of  time,  or  increased  income  for  the  unit. 

This  report  will  not  attempt  to  specify  a  generic  demand  moderation  architecture. 
However,  in  the  following  sections,  a  simple  demand  moderation  architecture  is  proposed 
for  the  protection  of  a  single  impoverished  link.  In  order  to  realise  this  architecture,  the 
next  section  introduces  the  auction  based  token  bucket  algorithm.  Further  work  needs  to 
be  performed  to  determine  the  efficacy  of  particular  schemes. 

3.  Auction  Based  Token  Bucket  Algorithm 

3.1  Overview 

This  section  presents  an  auction  based  token  bucket  algorithm  that  is  designed  to  meet  the 
demand  moderation  requirements  for  a  single  communications  link.  The  role  of  the 
algorithm  is  not  limited  to  demand  moderation  -  there  may  be  tolling  applications  in  the 
commercial  setting.  It  should  be  stressed  that  no  claims  are  made  for  the  uniqueness  of  the 
algorithm  -  there  may  be  other  means  to  achieving  a  demand  moderation  utility.  The  key 
features  are: 

1.  Bandwidth  available  for  units  is  competed  for  in  a  market  based  on  the  Progressive 
Second  Price  (PSP)  auction  to  be  detailed  below. 
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2.  The  key  requirements  for  demand  moderation,  namely  a  concept  of  unit  funds  and  of 
market  prices,  fit  naturally  into  the  algorithm  framework. 

3.  The  algorithm  is  split  into  two  threads  to  render  it  realisable  in  real-time.  It  does  not 
introduce  significant  latency  to  traffic  streams. 

4.  Units  can  readily  specify  their  auctioning  "aggressiveness",  sacrificing  available  funds 
for  short-term  network  access  if  necessary. 

The  auction  based  token  bucket  algorithm  is  a  variation  of  an  algorithm  in  [KENN94] 
which  was  given  a  generalised  treatment  in  [FLOY95].  The  work  of  the  latter  reference 
forms  a  basis  for  the  Class  Based  Queueing  new  networking  features  in  the  Linux  2.2 
kernels. 


Output  Output  Output 

Traffic  1  Traffic  2  Traffic  N 

Figure  1  -  Auction  Based  Token  Bucket  Algorithm 

A  diagrammatic  representation  of  the  algorithm  is  given  in  Figure  1.  Each  unit  has  three 

associated  resources: 

1.  A  source  of  funds  managed  via  a  funds  token  bucket.  Funds  are  deposited  at  a  constant 
rate  according  to  the  token  bucket  attributes. 

2.  A  bidder  object  which  draws  on  available  funds  to  participate  in  the  auction.  The 
bidders  compete  in  order  to  obtain  transmission  tokens  for  their  corresponding  unit. 

3.  A  transmission  token  bucket  which  is  used  to  regulate  unit  traffic.  Tokens  are  placed  in 
the  various  buckets  according  to  the  auction  results.  Submitted  unit  traffic  draws  on  the 
tokens  for  transmission. 
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An  auctioneer  object  is  responsible  for  maintaining  transmission  tokens,  conducting 
auctions  for  these  tokens,  and  for  distributing  those  tokens  to  the  successful  bidder(s). 
During  a  particular  auction,  the  various  active  bidders  submit  a  series  of  (token  quantity, 
bid  price)  bids  based  upon  a  pre-configured  strategy/  algorithm.  These  bids  continue  until 
either  the  auction  reaches  equilibrium  (this  is  discussed  in  the  next  section)  or  until  the 
auctioneer  announces  the  completion  to  the  various  bidders.  At  the  point  of  auction 
completion,  transmission  tokens  are  allocated  according  to  the  PSP  auction  allocation  rule 
[LAZA98].  These  tokens  can  then  be  drawn  on  by  unit  traffic. 

The  algorithm  contains  two  independent  threads:  the  auction  thread  and  the  real-time 
traffic  thread.  The  auction  thread  manages  the  bidding,  the  PSP  algorithm,  and  the 
distribution  of  the  transmission  tokens  to  the  various  transmission  token  buckets.  The  real¬ 
time  traffic  thread  handles  the  packet  scheduling  and  the  release  of  transmission  tokens 
required  to  send  a  packet. 

The  split  nature  of  the  algorithm  is  critical  for  the  implementation  of  scheme  as  the 
introduction  of  excessive  latency  is  minimised.  The  auction  thread  is  generally 
computationally  demanding,  and  if  the  dynamic  auctioning  scheme  suggested  by 
[LAZA98]  is  used,  the  convergence  time  is  typically  slower  than  traffic  time  scales. 
Decoupling  the  traffic  thread  allows  packet  scheduling  independent  of  the  state  of  the 
auction.  It  is  not  overly  deleterious  if  the  auctioning  algorithm  has  not  converged  by  the 
allocation  and  token  distribution  time.  The  allocation  based  on  non-equilibrium  bids  has 
been  found  through  experience  to  closely  reflect  the  converged  state  allocation.  This  is  due 
to  the  fact  that  bids  generally  converge  rapidly  to  the  neighbourhood  of  the  Nash 
equilibrium  (for  a  description  of  game  theory  and  the  concept  of  the  Nash  equilibrium  the 
interested  reader  is  referred  to  [FUDE91]),  and  then  oscillate  around  it  before  ultimate 
convergence. 

3.2  Algorithm  Description 

3.2.1  Auction  Thread 

Let  auction  allocations  be  performed  at  times  tx ,  t2 ,  •  •  • ,  tk ,  •  •  • .  Let  the  state  of  the  auctioneer 
token  bucket  immediately  subsequent  to  token  allocation  at  time  tk  be  represented  by 
[a/, P “ ,pa\  where  OLak  is  the  quantity  of  tokens  in  the  bucket  (which  can  take  on  a 
negative  value),  (3a  is  the  capacity  of  the  bucket  and  pa  is  the  rate  at  which  tokens  are 
placed  in  the  bucket.  pa  is  generally  set  equal  to  the  output  line  rate. 

Let  each  funds  token  bucket  be  characterised  by  \x(k ,  ,  pf  ]  for  i  =  1,  •  •  • ,  N ,  where  0Ci  k 

is  the  quantity  of  tokens  in  bucket  i  immediately  subsequent  to  tk ,  /?/  is  the  capacity  of 
the  funds  bucket  i ,  pf  is  the  constant  rate  at  which  tokens  are  placed  in  bucket  i ,  and 
N  .is  the  number  of  bidders. 
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Let  each  transmission  token  bucket  be  characterised  by  \pc'  k ,  /?/ ,  p\k  ]  where  (Xik  is  the 
quantity  of  tokens  in  bucket  i  immediately  subsequent  to  tk ,  J3'  is  the  capacity  of  the 
output  bucket  i,  and  p\k  is  the  number  of  transmission  tokens  (measured  in  bits) 
allocated  to  bucket  i  at  time  tk . 

Summed  over  all  auctions,  the  total  amount  of  tokens  allocated  to  the  transmission  token 
buckets  is  less  than  or  equal  to  the  amount  auctioned,  i.e. 

X2X  w 

k= 1  i'=l  *=1 

Let  nk  be  the  number  of  tokens  allocated  at  an  auction  at  time  tk .  For  implementation 
simplicity,  assume  nk  is  constant  V/: .  The  average  time  between  auctions  (repletion  time) 
is  given  by  A t  =  nk  /  pa  . 

Let  tc  denote  the  current  time  and  let  tl  denote  the  last  time  when  the  auctioneer  token 
bucket  credit  was  updated.  The  auctioning  algorithm  is  now  presented. 

Auctioning  Algorithm 

1.  Set  jfc  =  l;  tk  =0;  t,  =  0;  ak  =0;  a(k  =  0?  for  i  = 

2.  Update  tc 

3.  Update  auctioneer  token  bucket  credit:  ak  =  min  fak  +  (tc  -  tt  )pa ,  ] 

4.  If  ak  >0  then  allocate  nk  transmission  tokens  (via  equations  (2)  -  (8)  following); 

<+.  ^  =  ^+i 

5.  Update  fund  buckets:  a(k  =  min^j.  +  (tc  - 1,  )p/ ,  /?/  }  V/ 

6.  t,=tc 

7.  Ask  for  bids;  let  n  denote  the  number  of  new  bids 

8.  If  n  =  0  then  wait  max-jj-  aak  /  pa ,  o) 

9.  Go  to  step  2 

Progressive  Second  Price  Auction 

Step  3  of  the  auctioning  algorithm  involves  the  allocation  of  tokens  to  the  various 
transmission  token  buckets  associated  with  the  bidders.  The  allocation  is  based  on  the 
current  bid  prices  and  bid  quantities.  The  algorithm  used  is  the  Progressive  Second  Price 
(PSP)  auction  [LAZA00],  which  is  an  extension  of  the  Vickrey  or  second  price  auction.  The 
second  price  auction  uses  a  closed  ballot  for  auctioning  a  single  indivisible  object.  The 
winner  of  the  auction  is  the  bidder  with  the  highest  bid,  but  only  the  second  highest  bid 
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price  is  paid.  This  method  has  many  desirable  properties,  the  most  important  of  which  is 
that  it  has  an  equilibrium  profile  where  all  participants  bid  their  true  valuation.  The  PSP 
auction,  on  the  other  hand,  is  concerned  with  the  auctioning  of  a  divisible  object.  The 
highest  bidder  receives  his  allocation  first  with  a  cost  determined  by  a  weighted  sum  of 
the  lower  bids.  Any  leftovers  are  then  allocated  to  the  second  highest  bidder  who  pays  a 
weighted  sum  of  the  lower  bids  etc. 

The  description  of  the  PSP  auction  to  follow  is  a  summary  and  tailoring  of  that  presented 
in  [LAZAOO]. 

Let  nk  tokens  be  allocated  at  time  tk .  Let  the  bid  of  the  i'h  bidder  just  before  the  auction  at 
time  tk  be  given  by 

si,k=(<h,k’Pi,k )  (2) 

where  qt  k  is  the  desired  number  of  tokens  and  pi  k  is  the  unit  bid  price.  The  set  of  all  bid 
prices  is  denoted  by 

sk  =  >"  ’>  SN,k  )=  ((#1,*  ’  P\,k  )» ’(QnJc  »  PnJc  ))  (3) 

The  set  of  all  bids  just  before  time  tk ,  apart  from  the  i,h  player  is  denoted  by  s_i  k ,  i.e. 

S-,,k  —  (p\,k  » '  ” >  Si-\,k  ’  ^i+l,k  ’  "  *  *  ^N,k  ) 

Consequently  one  can  denote  the  set  of  all  bids  by 

Sk=(si,k'’S-i,k)  (5) 

which  emphasises  that  the  i'h  player  is  the  focus. 

The  amount  of  tokens  allocated  to  each  bidder  is  given  by 

(sk )  =  min^a ,  Q.(pik ,  s_ik ) j  (6) 

where 

Qii y, s-u )  =  max j  nk  ~  Z Pj.k »  0  f 

The  cost  of  tokens  allocated  to  the  bidder  is  given  by 

C,  (sk  )  =  X  Pj,k  bj  (°;  s-i,k  )  -  aj  ( si.k ;  s-i,k )]  (8) 

i*i 


Bidder  Algorithm 

In  step  6  of  the  auctioning  algorithm,  each  bidder  is  asked  to  update  their  bids.  There  are  a 
wide  range  of  possible  methods  that  could  be  used  and  we  now  present  a  tailoring  of  an 
algorithm  presented  in  [SEMR99a]. 

Each  bidder  i  maintains  a  valuation  function  6,  (z) ,  relating  allocation  to  benefit.  The 
function  should  have  a  number  of  properties  to  reflect  elastic  demand,  that  is:  6t(z) 
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differentiable,  6t  (z)  positive,  non-increasing,  continuous,  and  strictly  concave  over  a 
domain.  These  properties  are  needed  to  prove  the  convergence  of  the  bidding  algorithm  to 
a  Nash  equilibrium. 

Each  bidder  aims  to  maximise  its  utility,  which  is  the  difference  between  the  valuation  of 
the  token  allocation  and  the  resulting  cost  of  those  tokens.  To  achieve  this  end,  a  utility 
function  «,()  is  defined.  Given  the  current  opponent  bids,  i.e.  s_ik,  u:(sk)  can  be 
calculated  from  the  following 

ui(sk)  =  6i(ai(sk))-ci(sk)  (9) 

Each  bidder  maintains  a  "budget"  denoted  by  bi  k .  This  budget  is  the  available  funds  to 
use  in  the  bidding  process.  Naturally  we  have  bi  k  <  a(k  <  0/  .  The  bidder  must  ensure 
that  the  resulting  allocation  cost  of  their  bid  does  not  exceed  bi  k . 


The  bid  which  maximises  the  utility  function  (9)  at  time  tk  is  given  by 

mi,k  =(VU’W,,*)  (10) 

where 

vik  =  [sup  G,.  (s_ik  )-£/  6>,.'(0)]f  and  wik  =  d]{vik )  (11) 

with 

Gi(s_ik )  =  [z  e  [0,n k] :  z  <  Q{ (d-(z),  s_ik )  and  (tj,  s_ik )dij  <  bik  j  (12) 

and 

Pi (z, s_ik )  =  inf  {y  >  0; Qt(y, s_:k )  >  z]  (13) 

and 

Qi(y> s-i,k )  =  lif11 2, (*7>  s-i,k )  -  max|  nk  ”  (14) 

A  cut-off  parameter  f  is  introduced  to  expedite  the  convergence  of  the  bidding  algorithm. 
A  bidder  will  only  update  the  current  bid  if  the  utility  is  increased  by  at  least  £  . 

Here  is  the  bidder  algorithm. 


1. 

2. 

3. 

4. 

5. 


If  a°ik  =  J3"  (output  token  bucket  full)  return  no  bid 


Set  auction  budget  bik  =  —  afk 


Compute  best  bid  mi  k  according  to  (10) 

If  ut  (mi  k ;  s_i  k )  >  m,  (si  k ;  s_i  k )  +  £  then  return  mi  k 
Return  no  bid 
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In  step  2,  the  budget  is  always  set  to  half  the  available  funds.  If  one  assumes  a  constant 
inter-auction  time  of  At  =  tk+1  -  tk ,  then  one  can  show  as  the  number  of  auctions  n  grows, 

that  the  auctioning  budget  relating  to  the  i'h  bidder  is  given  by 

limj^r«/o  +  A?A/S^r}  =  2A?A/  (15) 

n_>“  [2  1=0  2  J 

In  other  words,  assuming  steady  state,  one  can  expect  that  the  amount  of  funds  used  in 
each  auction  is  given  by  At  p(  (c.f.  step  2  of  the  bidding  algorithm). 

An  example  valuation  function  that  can  be  used  is  given  by 

0,-(z)  =  ~Ki  (mnrjz.n,.  }2  /  2  +  Kj nt  (riling, n,. }  (16) 

with  0  <  n,  <  nk .  The  parameters  Ki  and  ni  can  be  configured  by  the  unit  to  reflect  the 
bidding  strategy. 

3.2.2  Real-Time  Traffic  Thread 

Unlike  many  other  token  bucket  algorithms  that  have  a  constant  fill  rate,  the  auction  based 
token  bucket  algorithm  is  serviced  at  a  non-constant  rate  that  depends  on  auction  results. 
The  traffic  service  algorithm  is  fairly  simple.  Let  lik  denote  the  length  of  packet  k , 

k  =  1,2,  •  •  • ,  in  buffer  i ,  /  =  1,2,  •  •  • ,  N  .  ,  represents  the  length  of  the  first  packet  in  buffer 

i.  I ,  =  0  if  and  only  if  buffer  i  is  empty.  Let  ni  denote  a  buffer  metric  used  for 
scheduling  prioritisation.  The  packet  scheduling  algorithm  operates  as  follows. 

Packet  Scheduling  Algorithm 

1.  For  each  i  set 

2.  For  each  i ,  if  ln  >  0  then  Jtj  =  a'k  -  li  X  (the  difference  between  the  transmission  token 
bucket  credit  and  the  length  of  the  first  packet) 

3.  Let  K  =  max  7T,. 

4.  If  n  >  0  then  send  first  packet  from  buffer  i  ( i :  arg  Kt=n) 

i 

5.  Go  to  step  1 

The  above  algorithm  offers  a  guaranteed  service  to  any  streams  with  sufficient  credit,  in 
their  transmission  token  bucket.  Conversely,  packets  will  be  delayed  if  their  bidder  has  not 
accrued  sufficient  credit  via  the  auctions. 

The  algorithm  can  be  modified  so  that  tokens  that  are  not  allocated  in  any  auction  (recall 
equation  (1))  are  distributed  (free  of  charge)  via  some  form  of  round  robin  scheme.  This 
would  allow  units  with  insufficient  funds  to  capture  any  leftover  or  unguaranteed 
bandwidth. 
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4.  Example  Architecture 

In  this  section,  an  example  demand  moderation  architecture  will  be  presented.  The 
architecture  is  a  limited  one  which  is  limited  to  moderation  of  user  traffic  over  a  single 
impoverished  link.  Despite  the  simplicity,  this  situation  is  ubiquitous  in  Defence  networks. 
Some  examples  include: 

Local  Area  Network  Connected  to  the  Wide  Area  Network  via  a  Narrowband  Link:  This 
situation  is  quite  common.  Many  Defence  bases  are  in  this  situation. 

Deployed  Forces  Local  Area  Network:  Brigade  or  Battalion  level  forces  are  typically 
connect  to  headquarters  via  satellite  links  (e.g.  Parakeet).  These  links  are  limited  to 
data  rates  in  to  order  of  64-512kbps. 

VSAT  Networks:  In  the  near  future,  the  Australian  Deforce  Force  will  be  acquiring  a 
payload  on  a  commercial  satellite.  One  of  the  possible  uses  for  this  payload  is  to 
support  a  multiple  access  network  with  multiple  distributed  users  competing  for 
common  bandwidth. 

Remote  Servers:  Servers  on  termination  of  impoverished  links  fit  into  this  model. 
Bottlenecks:  It  may  be  possible  to  abstract  certain  networks  into  a  single  bottleneck 
(Norton  equivalent  bandwidth  [HSIA089])  capacity  and  moderate  the  users  based  on 
that  abstraction. 

4.1  Description 

Figure  2  represents  a  group  of  users  sharing  a  common  local  area  network  that  is 
connected  to  a  wide  area  network  via  a  single  impoverished  link.  In  the  example  diagram, 
there  are  three  units  with  the  first  unit  containing  multiple  users  sharing  common  demand 
moderating  resources. 

In  this  architecture,  the  auction  based  token  bucket  algorithm  presented  in  the  previous 
section  is  used  as  the  demand  moderating  market  mechanism.  Each  unit  has  an  agent  in 
the  form  of  a  bidder,  which  may  reside  in  either  a  unit  workstation  or  downloaded  onto 
the  gateway  where  the  auctioneer  resides.  Bids  are  submitted  asynchronously  either  across 
the  LAN  or  via  inter-process  communications.  An  auctioneer  receives  bids  from  the 
bidders  and  transmission  tokens  are  allocated  to  the  various  units,  which  enables  access  to 
link.  While  the  state  of  the  auction  is  a  complex  one,  only  the  current  unit  funds  and  the 
high  bid  price  are  fed  back  to  the  users. 

Generally,  the  entire  bandwidth  is  to  be  allocated  as  a  result  of  the  auction  (this  may  be 
shared  among  the  units).  However,  it  is  possible  to  limit  the  traffic  entering  the  WAN  by 
feeding  back  a  signal  to  the  auctioneer  specifying  the  auction  reserve  price.  This  may  have 
the  effect  of  only  a  partial  allocation  of  the  available  outgoing  bandwidth.  This  mechanism 
can  be  used  to  control  the  wide  area  dynamics.  That  is  why  a 
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dummy  bidder  is  normally  configured  into  the  auctioneer.  This  bidder  submits  bids  at  all 
auctions  asking  for  all  the  tokens  at  some  "reserve  price".  In  order  to  obtain  any  tokens  via 
the  Progressive  Second  Price  algorithm,  the  other  bidders  must  bid  at  a  price  higher  than 
this  reserve  price. 


BIDDERS 

Figure  2-  Demand  Moderation  for  a  Single  Impoverished  Link 

As  the  unit's  funds  are  diminished,  the  bidder  will  be  unable  to  effectively  compete  in  the 
auction  with  the  result  that  the  unit's  QoS  will  be  compromised. 

4.2  Implementation  Details 

A  demonstrator  has  been  developed  to  explore  the  efficacy  of  the  preceding  architecture  in 
terms  of  user  influence.  A  demand  moderating  router,  which  runs  the  auctions,  has  been 
developed  which  operates  on  a  workstation  running  the  Linux  2.4.2  operating  system 
enabled  with  netfilter1.  The  router  sits  on  a  private  local  area  network  which  connects  to  a 
wide  area  network  via  an  emulated  narrow-band  link. 


1  The  netfilter  framework  was  introduced  in  the  Linux  2.4  kernels  and  was  designed  to  simplify 
datagram  processing  in  the  kernel  firewalling  code.  The  resulting  architecture  is  far  more  flexible 
compared  to  previous  versions.  Netfilter  provides  a  mechanism  for  passing  packets  out  of  the  stack 
for  queueing  to  userspace,  then  receiving  these  packets  back  into  the  kernel  with  a  verdict 
specifying  what  to  do  with  the  packets 
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Iptables  is  used  to  set  up,  maintain,  and  inspect  the  tables  of  IP  packet  filter  rules  in  the 
Linux  kernel.  For  our  purposes,  the  Linux  workstation  is  configured  by  iptables  to  operate 
as  a  masquerading  router,  and  additionally,  to  pass  network  packets  into  the  userspace. 
Using  libipq2,  packets  that  are  redirected  into  userspace  are  queued  and  serviced 
according  to  auction  outcomes  before  being  reinserted  into  the  kernel. 

The  following  commands  are  executed  as  root  to  enable  the  routing  and  userspace  packet 
delivery. 

#  Turn  on  masquerading 

echo  "1"  >  /proc/sys/net/ipv4/ip_forward 
/ sbin/iptables  -t  nat  -A  POSTROUTING  -o  ethO  -j  MASQUERADE 

#  Enable  packet  fowarding. 
iptables  -A  FORWARD  -j  QUEUE 

Experiments  remain  to  be  performed  using  real  users  to  determine  the  efficacy  of  this 
architecture  and  approach. 


5.  Further  Work 


Demand  moderation  forms  part  of  the  wider  network  management  and  control  effort  by 
Communications  Division,  DSTO.  Work  in  the  division  has  focussed  on  architectures 
supporting  Military  Quality  of  Service  (M-QoS).  Initial  work  had  a  long-term  focus  and 
was  directed  towards  a  network  control  and  management  framework  based  on  models 
devised  by  the  IEEE  standard  initiative  called  P1520  and  the  TINA-C  consortium.  This 
framework  assumes  the  use  of  a  network  environment  that  is  open  and  programmable. 
The  framework  assumes  that  each  switch/ router  or  end-station  device  advertises  its 
resources,  making  them  accessible  to  controllers  which  run  algorithms  on  a  general 
purpose  distributed  processing  environment. 

Recent  work  has  focussed  on  two  areas:  the  M-QoS  interface,  and  M-QoS  in  IP  networks. 
To  provide  M-QoS,  a  standard  interface,  called  the  M-QoS  interface,  between  user 
applications  and  network  management  and  control  has  been  developed.  This  facilitates 
application  specification  of  M-QoS  requirements  for  a  network,  as  well  as  enabling  the 
network  to  inform  the  application  about  any  problems  in  delivering  promised  level  of 
service.  The  interface  assumes  two  sets  of  parameters,  one  describing  commercial  QoS 
parameters  and  the  other,  military  specific  parameters.  These  are  used  to  evaluate  the 
ultimate  priority  of  the  flow  according  to  the  policy  and  associated  algorithm  currently 
implemented  in  the  network. 

Figure  3  demonstrates  the  approach  to  achieve  the  M-QoS  capability  in  a  Defence  network 
using  network  management  and  control  mechanisms.  The  network  control  and 
management  evaluates  the  priority  of  the  flow  based  on  the  provided  parameters  and  the 


2.  The  development  library  libipq  is  a  development  library  for  iptables  userspace  packet  queuing. 
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currently  implemented  enterprise  policy.  If  there  are  enough  resources  in  the  network  to 
establish  the  flow  for  this  priority  level,  the  user  is  notified  and  the  network  management 
establishes  the  flow  with  the  corresponding  priority. 


Figure  3  -  MQoS  Representation 

Two  recent  reports  ([KWIAOla],  [KWIAOlb])  have  focussed  on  providing  MQoS  in  IP 
networks.  Figure  4  presents  the  current  view  on  how  M-QoS  could  be  implemented  in 
Defence  networks,  both  strategic  and  tactical.  The  use  of  DiffServ,  Bandwidth  Brokerage, 
MPLS  and  IETF  policy  framework  is  assumed.  The  whole  Defence  communication 
infrastructure  is  divided  into  strategic  and  tactical  domains  (more  than  one  of  each  type 
may  coexist).  Policy  Administration  (PA)  is  responsible  for  consistent  DiffServ  offering 
across  all  Defence  Core  domains.  It  controls  the  various  Bandwidth  Broker  (BB)  and  Policy 
Decision  Points  (PDP)  by  distributing  policy  changes  and  receiving  feedback  about  the 
state  of  the  network.  As  highlighted  in  [KWIAOlb],  there  are  arguments  for  distributing 
the  PA  function  that  will  not  be  discussed  here.  Each  domain  is  equipped  with  a  BB/PDP 
which  interact  with  the  PA,  and  perform  bandwidth  broker  functions  such  as:  admission 
control  of  requests  coming  from  end-user  hosts  for  network  resources;  evaluation  of  the 
ultimate  priority  of  the  flow  using  an  algorithm  distributed  by  the  PA;  and  selection  of  a 
particular  DiffServ  class  that  should  accommodate  a  flow  (if  there  is  enough  resources 
within  the  class,  the  request  is  admitted  and  the  edge  routers  are  notified  how  to  mark  the 
flow).  Note  that  BBs  of  adjacent  domains  need  to  cooperate  in  order  to  satisfy  cross 
domain  flow  requests. 
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Tactical  Environment 


Figure  4  -  Proposed  MQoS  Framework  (BB  -  Bandwidth  Broker,  PDP  -  Policy  Decision  Point, 
PEP  -  Policy  Enforcement  Point) 

Demand  moderation  mechanisms  can  be  synthesised  into  this  framework  within  classes  of 
flows  representing  particular  priority  levels.  Moderation  is  particularly  needed  in  the 
tactical  domains  and  part  of  the  brokerage  function  could  act  as  a  source  of  price 
regulations  to  achieve  the  desired  wide  area  dynamics.  Further,  in  the  flow  admission 
process,  unit  funds  could  be  taken  into  account.  This  principle  could  also  be  used  in  the 
degradation  of  existing  streams. 

A  major  Communications  Division  MILSATCOM  task.  Multiple  User  Access 
Architectures,  is  currently  in  the  preparation  phase.  This  will  provide  an  ideal 
environment  to  explore  the  integration  of  MQoS  and  demand  moderation  concepts.  A 
multiple  user  architecture  with  a  central  controller  could  readily  incorporate  the  sort  of 
demand  moderation  scheme  presented  in  the  previous  section,  with  the  auctioneer  co¬ 
located  with  the  network  controller.  The  BB/PDP  could  also  be  integrated  with  the 
network  controller. 

There  are  a  number  of  significant  challenges  remaining  before  demand  moderation 
concepts  could  be  widely  integrated  into  Defence  networks.  Demand  moderation  is 
focussed  upon  influencing  users  as  they  interact  with  the  network.  Generally  this  relies  on 
user  traffic  being  able  to  be  measured.  However  a  significant  proportion  of  user  traffic  is 
likely  to  be  generated  via  proxies  and  servers.  There  is  the  issue  of  "charging"  for  both 
"pushed"  and  "pulled"  data.  Furthermore,  encryption  means  that  only  edge  traffic  can  be 
observed.  Compounding  this,  on  many  networks  most  of  the  traffic  is  generated 
independently  from  human  users  and  demand  moderation  may  have  little  overall  benefit. 
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This  paper  has  presented  an  architecture  based  on  a  single  impoverished  link.  There 
remains  the  challenge  of  moderation  across  generic  networks.  There  is  the  appealing 
prospect  of  shaping  wide  area  dynamics  via  the  distributed  market  mechanisms  as  hinted 
in  [SEMR99a]. 

Of  course  the  wider  application  of  demand  moderation  will  most  likely  require  the  fitting 
of  edge  routers  with  custom  algorithms.  This  may  be  prohibitive  and  adjunct  processors 
may  be  fitting  only  where  moderation  is  particularly  critical. 

6.  Conclusion 

Demand  moderation  is  an  area  of  work  that  is  likely  to  reap  significant  benefits  for  many 
Defence  networks.  With  heightening  user  expectations  of  communications  networks  and 
the  simultaneous  expansion  of  Defence  networks  into  the  tactical  arena,  demand 
moderation  mechanisms  will  form  an  important  component  of  future  networks. 

The  author  of  this  report  has  performed  an  initial  survey  of  the  area  and  has  presented  a 
simple  architecture  for  the  moderation  of  a  single  impoverished  link.  An  auction  based 
token  bucket  algorithm  has  been  presented  to  realise  this  architecture. 

The  demand  moderation  concepts  presented  here,  augment  the  early  work  done  by  the 
Communications  Division  of  DSTO  in  the  area  of  Military  QoS  (MQoS)  within  Defence 
networks.  Additional  mechanisms  have  been  described  in  this  report  that  enable  the 
moderation  of  flows  within  a  traffic  class.  These  classes,  described  in  the  original 
framework,  could  possibly  be  vulnerable  to  inappropriate  user  access  without  moderation 
mechanisms. 

There  remain  a  number  of  significant  challenges  and  much  further  work  in  this  area.  A 
generic  architecture  needs  to  be  developed  which  is  scalable  and  can  be  realised  without 
large  signalling  overheads.  The  contexts  most  suitable  for  demand  moderation 
mechanisms  need  to  be  identified.  Further  work  will  be  performed  to  further  integrate  the 
moderation  concepts  into  the  MQoS  framework.  Finally  user  trials  are  required  to  quantify 
the  likely  effects  of  moderating  schemes. 
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